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DETAILED ACTION 

Response to Arguments 

1. Applicant's arguments have been fully considered and are persuasive. The 
previous grounds of rejection in view of England et al has been withdrawn. A new 
grounds of rejection has been applied in view of Hirano et al. 

Claim Rejections - 35 USC § 102 

2. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351 (a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21 (2) 
of such treaty in the English language. 

3. Claims 1-10,24-31,33-42, and 45-50 are rejected under 35 U.S.C. 102(e) as 
being anticipated by Hirano et al, U.S. Patent 7,046,807. 

As per claims 1 and 24, it is disclosed by Hirano et al of a method and a software 
product for securing a file, the method comprising launching an application when a 
request to access the file is received, determining, in an operating system supporting 
the application, whether the file being accessed is secured, when the file is determined 
to be secured, activating a cipher module and loading the file through the cipher module 
into the application, when the file is determined to be non-secured, loading the file into 
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the application without activating the cipher module (col. 5, lines 3-23 and col. 7, line 55 
through col. 8, line 2). 

As per claim 2, Hirano et al teaches that the cipher module, once activated, 
operates within the operating system (col. 7, line 55 through col. 8, line 2). 

As per claim 3, Hirano et al recites that the cipher module, once activated, 
operates transparently to a user requesting an access to the file (col. 5, lines 3-23). 

As per claims 4 and 25, Hirano et al teaches that the secured file includes a 
header and an encrypted portion, the header including or pointing to security 
information including a file key that, once obtained, can be used to decrypt the 
encrypted portion (col. 5, lines 3-23). 

As per claims 5 and 26, Hirano et al discloses of determining of whether the file 
being accessed is secured comprises determining if the file being accessed includes the 
header (col. 5, lines 3-23). 

As per claim 6, Hirano et al teaches that the header further includes a flag 
indicating that the file being accessed is secured, and wherein the determining of 
whether the file being accessed is secured comprises determining if the file has the flag 
(col. 5, lines 3-23). 

As per claims 7 and 27, the teachings of Hirano et al recite wherein the loading of 
the file through the cipher module into the application comprises retrieving the file key, 
decrypting the encrypted portion with the file key in the cipher module, and sending the 
file in clear mode to the application (col. 7, line 55 through col. 8, line 2). 
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As per claims 8 and 28, it is disclosed by Hirano et al that the security information 
including the file key is encrypted with a user key, and wherein the retrieving of the file 
key comprises obtaining a user key associated with a user requesting an access to the 
file, and decrypting the encrypted security information with the user key to retrieve the 
file key (col. 7, line 55 through col. 8, line 2). 

As per claims 9 and 29, Hirano et al discloses that the security information further 
includes access rules controlling how and who the secured file can be accessed (col. 5, 
lines 3-23). 

As per claims 10 and 30, the teachings of Hirano et al recite wherein the loading 
of the file through the cipher module into the application only happens when access 
privilege of the user is within permissions granted by the access rules (col. 5, lines 3- 
23). 

As per claim 31., Hirano et al teaches of a software product including computer 
instructions for securing a file, the instructions, when executed by a processor, cause 
the processor to perform operations of maintaining a file key in a temporary memory 
space, encrypting the file with the file key in a cipher module to produce an encrypted 
file, wherein the file has been opened with an application and the cipher module 
operates transparently as far as a user executing the application is concerned, and 
storing, in a storage space, a secured file including the encrypted file and a header, 
wherein the header includes or points to security information including the file key (col. 
5, lines 3-23 and col. 7, line 55 through col. 8, line 2). 

As per claim 33, Hirano et al teaches wherein the encrypting of the file with the 
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file key happens whenever the file is caused to be stored in the storage space (col. 5, 
lines 3-23). 

As per claim 34, Hirano et al recites wherein the encrypting of the file with the file 
key happens upon receiving an instruction from the application or an operating system 
supporting the application (col. 5, lines 3-23). 

As per claim 35, Hirano et al teaches wherein the instruction is one of (i) Save, 
(ii) Close and (iii) Exit, all provided in the application (col. 5, lines 3-23). 

As per claim 36. Hirano et al discloses wherein the instruction is generated from 
an automatic operation of saving the file being opened into the storage space, the 
automatic operation is either triggered by the application itself or the operating system 
(col. 5, lines 3-23). 

As per claim 37, Hirano et al discloses wherein the security information further 
includes access rules of how and who the secured file can be accessed (col. 6, lines 33- 
45). 

As per claim 38, it is taught by Hirano et al of encrypting the security information 
with a user key associated with a member selected from a group consisting of a user, a 
device,. a software module, and a group (col. 5, lines 3-23). 

As per claim 39, Hirano et al recites of attaching the header to the encrypted file, 
wherein the header includes the security information encrypted in addition to a flag 
indicating that the file is secured (col. 5, lines 3-23). 

As per claim 40, Hirano et al teaches of a computing device for securing a file, 
the computing device comprising an application, when executed, accessing the file that 
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includes security information and an encrypted portion, the security information further 
including a file key and access rules, and the encrypted portion being an encrypted 
version of the file, a cipher module activating upon determining that the file being 
accessed is secured, wherein the security information is encrypted and can be 
decrypted with a user key when authenticated; and wherein the file key can be retrieved 
to decrypt the encrypted portion only after the access rules have successfully measured 
against access privilege of the user (col. 5, lines 3-23 and col. 7, line 55 through col. 8, 
line 2). 

As per claim 41, Hirano et al discloses of an operating system supporting 
operations of the application/and wherein the cipher module is embedded in the 
operating system (col. 7, line 55 through col. 8, line 2). 

As per claim 42, Hirano et al discloses wherein the cipher module operates in 
a path through which the file is caused to pass when accessed by the application (col. 
7, line 55 through col. 8, line 2). 

As per claim 45, Hirano et al teaches wherein the user key becomes 
authenticated only when the user is authenticated by an authentication process to verify 
who the user claims to be (col. 10, lines 12-35). 

As per claim 46, Hirano et al discloses wherein the computing device is coupled 
to another computing device over a data network, the user key becomes authenticated 
only after the user is successfully logged from the computing device into the another 
computing device (col. 10, lines 12-35) 
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As per claim 47, Hirano et al teaches wherein the computing device is provided 
with means for capturing biometric data of the user, the user key becomes 
authenticated only after the biometric data is successfully verified to support who the 
user claims to be (col. 10, lines 12-35). 

As per claim 48, it is taught by Hirano et al wherein the user key becomes 
authenticated after the computing device receives credential information from the user 
(col. 10, lines 12-35). 

As per claim 49, Hirano et al discloses wherein the credential information 
includes one of a password entered by the user, biometric information of the user, 
personalized information about the user (col. 10, lines 12-35). 

As per claim 50, Hirano et al recites wherein the biometric information is captured 
from a device coupled to the computing device (col. 10, lines 12-35). 

Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

5. Claims 1 1-23,32,43, and 44 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Hirano et al, U.S. Patent 7,046,807 in view of Novak, U.S. Patent 
6,865,555. 
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As per claim 1 1 , Hirano et al teaches of a method for securing a file, the method 
comprising encrypting the file with the file key in a cipher module to produce an 
encrypted portion, preparing security information for the encrypted portion, the security 
information being encrypted and including the file key and access rules to control 
access to the encrypted portion, and attaching the encrypted security information to the 
encrypted portion (col. 5, lines 3-23 and col. 7, line 55 through col. 8, line 2). The 
teachings of Hirano et al fail to disclose of maintaining a file key in a temporary memory 
space. It is taught by Novak of maintaining a file key in a temporary memory space (col. 
12, lines 16-28). It would have been obvious to a person of ordinary skill in the art at 
the time of the invention to have been motivated to applying the storage of a key in 
temporary memory space. The teachings of Novak disclose of motivation for doing so 
by reciting that the data is stored temporarily in order to avoid tampering (col. 8, line 66 
through col. 9, line 8 and col. 12, lines 20-24). It is obvious that the teachings of Hirano 
et al would have been more secure by temporarily storing a file key in order to avoid 
tampering as taught by Novak. 

As per claim 12, Novak teaches of deleting the file key from the temporary 
memory space when the attaching of the encrypted security information to the 
encrypted portion is complete (col. 12, lines 16-28). Please refer above for the 
motivation and reasons of applying the teachings of Novak to the disclosure of Hirano et 
al. 

As per claim 13, Hirano et al discloses that wherein the encrypting of the file with 
the file key, the preparing of the security information, and the attaching of the encrypted 
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security information happen whenever the file is caused to be stored in a storage space 
(col. 14, lines 18-35). 

As per claim 14, it is disclosed by Hirano et al wherein the encrypting of the file 
with the file key, the preparing of the security information, and the attaching of the 
encrypted security information happen upon receiving an instruction from an application 
or an operating system supporting the application (col. 5, lines 3-23). 

As per claim 15, Novak teaches wherein the application is provided in Microsoft 
Office and the operating system is Microsoft Windows (col. 9, lines 30-32). Please refer 
above for the motivation and reasons of applying the teachings of Novak to the 
disclosure of Hirano et al. 

As per claim 16, it is disclosed by Hirano et al that the instruction is one of (i) 
Save, (ii) Close and (iii) Exit, all provided in the application (col. 5, lines 3-23). 

As per claim 17, Hirano et al teaches that the instruction is generated from an 
automatic operation of saving the file being opened into the storage space, the 
automatic operation is either triggered by the application itself or the operating system 
(col. 6, lines 33-45). 

As per claim 18, Hirano et al recites of encrypting the security information with a 
user key associated with a member selected from a group consisting of a user, a 
device, a software module, and a group of users (col. 5, lines 3-23). 

As per claim 19, Hirano et al teaches wherein the access rules in the security 
information comprises user information identifying who can assess the encrypted 
portion and how the encrypted portion can be accessed (col. 5, lines 3-23). 
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As per claim 20, Hirano et al discloses a method for providing access control to a 
file, the method comprising launching an application under an operating system when a 
request to access the file is received, forwarding the request to a file system manager in 
the operating system, activating a document securing module by the file system 
manager to determine whether the file being accessed is secured, activating a cipher 
module when the file is determined to be secured, and loading the file through the 
cipher module into the application (col. 7, line 55 through col. 8, line 2). 

As per claim 21 , Hirano et al recites of retrieving security information from the file 
when the file is determined to be secured, the security information including a file key 
and access rules, and obtaining an access privilege of a user requesting to access the 
file (col. 5, lines 3-23). 

As per claim 22, the teachings of Hirano et al recite wherein the activating of the 
cipher module proceeds successfully when the access privilege is within permissions 
granted by the access rules (col. 6, lines 33-45). 

As per claim 23, it is disclosed by Hirano et al wherein the activating of the cipher 
module comprises decrypting an encrypted portion of the secured file with the file key 
(col. 7, line 55 through col. 8, line 2). 

As per claim 32, Hirano et al fails to teach of deleting the file key from the 
temporary memory space when the application is caused to close the file . Novak 
discloses of deleting the file key from the temporary memory space when the 
application is caused to close the file (col. 12, lines 16-28). It would have been obvious 
to a person of ordinary skill in the art at the time of the invention to have been motivated 
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to applying the storage of a key in temporary memory space. The teachings of Novak 
disclose of motivation for doing so by reciting that the data is stored temporarily in order 
to avoid tampering (col. 8, line 66 through col. 9, line 8 and col. 12, lines 20-24). It is 
obvious that the teachings of Hirano et al would have been more secure by temporarily 
storing a file key in order to avoid tampering as taught by Novak. 

As per claim 43, the teachings of Hirano et al fail to disclose of maintaining a file 
key in a temporary memory space. It is taught by Novak of maintaining a file key in a 
temporary memory space (col. 12, lines 16-28). It would have been obvious to a person 
of ordinary skill in the art at the time of the invention to have been motivated to applying 
the storage of a key in temporary memory space. The teachings of Novak disclose of 
motivation for doing so by reciting that the data is stored temporarily in order to avoid 
tampering (col. 8, line 66 through col. 9, line 8 and col. 12, lines 20-24). It is obvious 
that the teachings of Hirano et al would have been more secure by temporarily storing a 
file key in order to avoid tampering as taught by Novak. 

As per claim 44, it is disclosed by Novak wherein the file key is deleted from the 
memory space as soon as the file is wrote back to the storage space (col. 12, lines 16- 
28). Please refer above for the motivation and reasons of applying the teachings of 
Novak to the disclosure of Hirano et al. 
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Conclusion 

6. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Christopher A. Revak whose telephone number is 571- 
272-3794. The examiner can normally be reached on Monday-Friday, 6:30am-3:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 571-272-3795. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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